Lucene search
K

16996 matches found

OSV
OSV
added 2019/07/23 2:15 p.m.24 views

CVE-2019-1010204

GNU binutils gold gold v1.11-v1.16 GNU binutils v2.21-v2.31.1 is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcppfile.h:644. The attack vector is: An ELF file with an...

5.5CVSS6.6AI score
Exploits0References3
NVD
NVD
added 2019/07/23 2:15 p.m.27 views

CVE-2019-1010204

GNU binutils gold gold v1.11-v1.16 GNU binutils v2.21-v2.31.1 is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcppfile.h:644. The attack vector is: An ELF file with an...

5.5CVSS6.3AI score0.01115EPSS
Exploits0References3
CVE
CVE
added 2019/07/23 1:39 p.m.160 views

CVE-2019-1010204

CVE-2019-1010204 affects GNU binutils, specifically the gold linker. The vulnerability arises from a combination of improper input validation , signed/unsigned comparison , and an out-of-bounds read in the code paths for gold/fileread.cc:497 and elfcpp/elfcpp_file.h:644. The documented impact is ...

5.5CVSS5.9AI score0.01115EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2019/07/23 1:39 p.m.30 views

CVE-2019-1010204

GNU binutils gold gold v1.11-v1.16 GNU binutils v2.21-v2.31.1 is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcppfile.h:644. The attack vector is: An ELF file with an...

6.1AI score0.01115EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2019/07/23 12:0 a.m.28 views

Oracle MySQL Server 5.7 <= 5.7.25 / 8.0 <= 8.0.15 Security Update (cpujul2019) - Linux

Oracle MySQL Server is prone to an unspecified denial of service vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.9CVSS5.6AI score0.02197EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/07/23 12:0 a.m.51 views

Oracle MySQL Server <= 5.6.44 / 5.7 <= 5.7.26 / 8.0 <= 8.0.16 Security Update (cpujul2019) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

6.5CVSS6.7AI score0.03972EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/07/23 12:0 a.m.21 views

The vulnerability of the gpg data encryption tool from the gnupg package, related to errors in pointer arithmetic, allows a perpetrator to trigger a service failure.

The vulnerability of the gpg data encryption tool from the gnupg package is related to errors in pointer arithmetic. Exploiting this vulnerability could allow an attacker to trigger a service failure, by passing a specially crafted file as an argument to the command line...

6.2CVSS5.5AI score
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2019/07/22 12:51 p.m.41 views

CVE-2019-1010022

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass stack guard protection. The component is: nptl. The attack vector is: Exploit stack buffer overflow vulnerability and use this bypass vulnerability to bypass stack guard. NOTE: Upstream comments indicate "this ...

9.8CVSS9.7AI score0.03249EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2019/07/22 12:0 a.m.21 views

CVE-2019-13638

GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable system. This is different from CVE-2018-1000156...

9.3CVSS7.1AI score0.0453EPSS
Exploits0References3
OSV
OSV
added 2019/07/22 12:0 a.m.4 views

UBUNTU-CVE-2019-13638

GNU patch through 2.7.6 is vulnerable to OS shell command injection that can be exploited by opening a crafted patch file that contains an ed style diff payload with shell metacharacters. The ed editor does not need to be present on the vulnerable system. This is different from CVE-2018-1000156...

7.8CVSS7.1AI score0.0453EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.48 views

EulerOS 2.0 SP2 : binutils (EulerOS-SA-2019-1728)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - binutils: integer overflow leads to heap-based buffer overflow in objdumpCVE-2018-1000876 - An issue was discovered in GNU Binutils 2.32. It i...

7.8CVSS6.5AI score0.01976EPSS
Exploits4References5
Kitploit
Kitploit
added 2019/07/20 1:1 p.m.191 views

Parrot Security 4.7 - Security GNU/Linux Distribution Designed with Cloud Pentesting and IoT Security in Mind

Parrot is a GNU/Linux distribution based on Debian Testing and designed with Security, Development and Privacy in mind. It includes a full portable laboratory for security and digital forensics experts, but it also includes all you need to develop your own software or protect your privacy while...

7.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2019/07/18 12:0 a.m.13 views

Hudson CI Detection (Auto Discovery)

The scripts tries to detect a Auto Discovery service of a Hudson CI server and to extract a possible exposed version. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the G...

0.2AI score
Exploits0
NVD
NVD
added 2019/07/17 9:15 p.m.16 views

CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c...

5.9CVSS5.6AI score0.03927EPSS
Exploits0References12
OSV
OSV
added 2019/07/17 9:15 p.m.5 views

AZL-35105 CVE-2019-13636 affecting package patch for versions less than 2.7.6-9

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c...

5.9CVSS6.6AI score0.03927EPSS
Exploits0References1
OSV
OSV
added 2019/07/17 9:15 p.m.26 views

CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c...

5.9CVSS5.6AI score
Exploits0References12
OSV
OSV
added 2019/07/17 9:15 p.m.3 views

ALPINE-CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c...

5.9CVSS6.9AI score0.03927EPSS
Exploits0References1
Prion
Prion
added 2019/07/17 9:15 p.m.18 views

Design/Logic Flaw

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c...

5.8CVSS5.7AI score0.03927EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2019/07/17 8:4 p.m.20 views

CVE-2019-13636

In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c...

5.9AI score0.03927EPSS
Exploits0References12
CVE
CVE
added 2019/07/17 8:4 p.m.631 views

CVE-2019-13636

CVE-2019-13636 affects GNU patch; the vulnerability arises from mishandling of following symlinks in inp.c and util.c in certain cases beyond input files. Public references describe potential for arbitrary file access/overwrite and, per Debian, shell command injection or escape from the working d...

5.9CVSS6.3AI score0.03927EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder